Commentaries and Analyses – Page 598

Fatal flaws in ten pacemakers make for Denial of Life attacks

Posted on December 1, 2016 by Dissent

Darren Pauli reports: A global research team has hacked 10 different types of implantable medical devices and pacemakers finding exploits that could allow wireless remote attackers to kill victims. Eduard Marin and Dave Singelée, researchers with KU Leuven University, Belgium, began examining the pacemakers under black box testing conditions in which they had no prior…

NYS audit of Glen Cove City School District finds deficiencies in IT procedures

Posted on November 30, 2016 by Dissent

NYS Comptroller DiNapoli has released the state’s audit of the Glen Cove City School District . The audit concerned portable electronic devices. Key findings from the audit: There was no written policy for notifying the IT office of new hires, keeping track of equipment assigned to employees and collecting equipment when an employee leaves District employment. The District’s…

Barrett Brown leaves prison still chained to a crime he didn’t commit

Posted on November 29, 2016 by Dissent

Dell Cameron reports: Dallas-based journalist Barrett Brown walked free from prison on Tuesday morning after spending more than four years behind bars. The 35-year-old cause célèbre, convicted in January 2015 after spending more than two years in pretrial confinement, faces a laundry list of post-release restrictions and obligations, including drug treatment, mental health evaluations, and computer monitoring. Read…

Data Breach Notification In the EU: A Comparison of US and Soon-To-Be EU Law

Posted on November 28, 2016 by Dissent

David A. Zetoony, Joshua A. James, Jena M. Valdetero, and Christopher M. Achatz of Bryan Cave provide an overview of significant differences between U.S. breach notification laws and the EU’s General Data Protection Regulation (“GDPR”). Here’s a snippet from their analysis: That said, there are several significant differences including: Type of Information Governed. Data breach notification laws in the United States apply…

Data manipulation heralds a new era of hacking

Posted on November 26, 2016 by Dissent

Here’s one of the nightmares I’ve occasionally had over the past two years: a healthcare entity gets hacked, but instead of patient data being stolen, it’s corrupted, leading to inaccurate patient medical records that result in wrong treatment or even fatal mistakes. Has it already happened? Data corruption is a risk that has always been mentioned in…

Paytm suspends ‘App POS’ on data security concerns

Posted on November 25, 2016 by Dissent

PTI reports: Mobile wallet company Paytm has suspended its app that allowed small shopkeepers to accept payment through cards amid ongoing cash crunch, citing risks to customer data and privacy. The new feature was designed to eliminate the need for a physical point-of-sale (PoS) terminal or a card swipe machine, instead helping small shopkeepers use their smartphones…